<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Fri, 03 Jul 2026 20:10:24 +0000</lastBuildDate>
    <item>
      <title>a832ebd0-6149-4503-acee-b145ea61a694</title>
      <link>https://vulnerability.circl.lu/sighting/a832ebd0-6149-4503-acee-b145ea61a694/export</link>
      <description>{"uuid": "a832ebd0-6149-4503-acee-b145ea61a694", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/ltswi.bsky.social/post/3mppcgtplg42c", "content": "In May 2026, Microsoft confirmed that hackers are actively breaking into on-premise Exchange servers using a flaw called CVE-2026-42897.\n\nThe attack is simple. A hacker sends a normal-looking email to someone on your team. They open it in the browser version of Outlook. Hidden code in the email runs", "creation_timestamp": "2026-07-03T00:35:23.676042Z"}</description>
      <content:encoded>{"uuid": "a832ebd0-6149-4503-acee-b145ea61a694", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/ltswi.bsky.social/post/3mppcgtplg42c", "content": "In May 2026, Microsoft confirmed that hackers are actively breaking into on-premise Exchange servers using a flaw called CVE-2026-42897.\n\nThe attack is simple. A hacker sends a normal-looking email to someone on your team. They open it in the browser version of Outlook. Hidden code in the email runs", "creation_timestamp": "2026-07-03T00:35:23.676042Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/a832ebd0-6149-4503-acee-b145ea61a694/export</guid>
      <pubDate>Fri, 03 Jul 2026 00:35:23 +0000</pubDate>
    </item>
    <item>
      <title>70eba25a-a244-4186-84ae-cc5e879985c6</title>
      <link>https://vulnerability.circl.lu/sighting/70eba25a-a244-4186-84ae-cc5e879985c6/export</link>
      <description>{"uuid": "70eba25a-a244-4186-84ae-cc5e879985c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/uwannawat.bsky.social/post/3mppcgqxikd2n", "content": "In May 2026, Microsoft confirmed that hackers are actively breaking into on-premise Exchange servers using a flaw called CVE-2026-42897.\n\nThe attack is simple. A hacker sends a normal-looking email to someone on your team. They open it in the browser version of Outlook. Hidden code in the email runs", "creation_timestamp": "2026-07-03T00:35:21.358091Z"}</description>
      <content:encoded>{"uuid": "70eba25a-a244-4186-84ae-cc5e879985c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/uwannawat.bsky.social/post/3mppcgqxikd2n", "content": "In May 2026, Microsoft confirmed that hackers are actively breaking into on-premise Exchange servers using a flaw called CVE-2026-42897.\n\nThe attack is simple. A hacker sends a normal-looking email to someone on your team. They open it in the browser version of Outlook. Hidden code in the email runs", "creation_timestamp": "2026-07-03T00:35:21.358091Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/70eba25a-a244-4186-84ae-cc5e879985c6/export</guid>
      <pubDate>Fri, 03 Jul 2026 00:35:21 +0000</pubDate>
    </item>
    <item>
      <title>e24b823f-6e23-4297-b229-eff8c09c3e7b</title>
      <link>https://vulnerability.circl.lu/sighting/e24b823f-6e23-4297-b229-eff8c09c3e7b/export</link>
      <description>{"uuid": "e24b823f-6e23-4297-b229-eff8c09c3e7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/geekpoint.bsky.social/post/3mppcgpk3ui2j", "content": "In May 2026, Microsoft confirmed that hackers are actively breaking into on-premise Exchange servers using a flaw called CVE-2026-42897.\n\nThe attack is simple. A hacker sends a normal-looking email to someone on your team. They open it in the browser version of Outlook. Hidden code in the email runs", "creation_timestamp": "2026-07-03T00:35:19.469850Z"}</description>
      <content:encoded>{"uuid": "e24b823f-6e23-4297-b229-eff8c09c3e7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/geekpoint.bsky.social/post/3mppcgpk3ui2j", "content": "In May 2026, Microsoft confirmed that hackers are actively breaking into on-premise Exchange servers using a flaw called CVE-2026-42897.\n\nThe attack is simple. A hacker sends a normal-looking email to someone on your team. They open it in the browser version of Outlook. Hidden code in the email runs", "creation_timestamp": "2026-07-03T00:35:19.469850Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/e24b823f-6e23-4297-b229-eff8c09c3e7b/export</guid>
      <pubDate>Fri, 03 Jul 2026 00:35:19 +0000</pubDate>
    </item>
    <item>
      <title>61e31b0c-6d6e-440d-8ef0-850057a2fce9</title>
      <link>https://vulnerability.circl.lu/sighting/61e31b0c-6d6e-440d-8ef0-850057a2fce9/export</link>
      <description>{"uuid": "61e31b0c-6d6e-440d-8ef0-850057a2fce9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/newstecnicas.com/post/3moxlk2fuas2l", "content": "\ud83d\udee1\ufe0f #Alerta Cr\u00edtica: CVE-2026-42897 y #Exploits Activos en Exchange tras #Patch Tuesday www.newstecnicas.com/2026/06/aler...", "creation_timestamp": "2026-06-23T14:14:27.688601Z"}</description>
      <content:encoded>{"uuid": "61e31b0c-6d6e-440d-8ef0-850057a2fce9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/newstecnicas.com/post/3moxlk2fuas2l", "content": "\ud83d\udee1\ufe0f #Alerta Cr\u00edtica: CVE-2026-42897 y #Exploits Activos en Exchange tras #Patch Tuesday www.newstecnicas.com/2026/06/aler...", "creation_timestamp": "2026-06-23T14:14:27.688601Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/61e31b0c-6d6e-440d-8ef0-850057a2fce9/export</guid>
      <pubDate>Tue, 23 Jun 2026 14:14:27 +0000</pubDate>
    </item>
    <item>
      <title>3f344723-1e58-4fb1-9446-cef942542cd8</title>
      <link>https://vulnerability.circl.lu/sighting/3f344723-1e58-4fb1-9446-cef942542cd8/export</link>
      <description>{"uuid": "3f344723-1e58-4fb1-9446-cef942542cd8", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/0ea415e7-5f42-41a9-b307-13732d7df755", "content": "", "creation_timestamp": "2026-06-23T14:03:38.130504Z"}</description>
      <content:encoded>{"uuid": "3f344723-1e58-4fb1-9446-cef942542cd8", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/0ea415e7-5f42-41a9-b307-13732d7df755", "content": "", "creation_timestamp": "2026-06-23T14:03:38.130504Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/3f344723-1e58-4fb1-9446-cef942542cd8/export</guid>
      <pubDate>Tue, 23 Jun 2026 14:03:38 +0000</pubDate>
    </item>
    <item>
      <title>f2e042c2-d533-4e99-b889-387b4654e6b6</title>
      <link>https://vulnerability.circl.lu/sighting/f2e042c2-d533-4e99-b889-387b4654e6b6/export</link>
      <description>{"uuid": "f2e042c2-d533-4e99-b889-387b4654e6b6", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/7fa6af2f-9e78-4a3d-999f-234f19940f99", "content": "", "creation_timestamp": "2026-06-19T12:45:12.118108Z"}</description>
      <content:encoded>{"uuid": "f2e042c2-d533-4e99-b889-387b4654e6b6", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/7fa6af2f-9e78-4a3d-999f-234f19940f99", "content": "", "creation_timestamp": "2026-06-19T12:45:12.118108Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/f2e042c2-d533-4e99-b889-387b4654e6b6/export</guid>
      <pubDate>Fri, 19 Jun 2026 12:45:12 +0000</pubDate>
    </item>
    <item>
      <title>1a93e4c1-a8f7-42b5-befb-110a6e742bec</title>
      <link>https://vulnerability.circl.lu/sighting/1a93e4c1-a8f7-42b5-befb-110a6e742bec/export</link>
      <description>{"uuid": "1a93e4c1-a8f7-42b5-befb-110a6e742bec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/redmondit.bsky.social/post/3modxsnrhkp2u", "content": "Microsoft has released its June 2026 Exchange Server security updates, including fixes for CVE-2026-42897 and other vulnerabilities affecting supported on-premises deployments.\n\nSee what Exchange administrators need to know: https://ow.ly/EOxl50ZbMqp\n\n#Microsoft #ExchangeServer #Cybersecurity", "creation_timestamp": "2026-06-15T19:00:39.818369Z"}</description>
      <content:encoded>{"uuid": "1a93e4c1-a8f7-42b5-befb-110a6e742bec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/redmondit.bsky.social/post/3modxsnrhkp2u", "content": "Microsoft has released its June 2026 Exchange Server security updates, including fixes for CVE-2026-42897 and other vulnerabilities affecting supported on-premises deployments.\n\nSee what Exchange administrators need to know: https://ow.ly/EOxl50ZbMqp\n\n#Microsoft #ExchangeServer #Cybersecurity", "creation_timestamp": "2026-06-15T19:00:39.818369Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/1a93e4c1-a8f7-42b5-befb-110a6e742bec/export</guid>
      <pubDate>Mon, 15 Jun 2026 19:00:39 +0000</pubDate>
    </item>
    <item>
      <title>3d4d5913-2b99-49b9-8f24-8567110ca0cd</title>
      <link>https://vulnerability.circl.lu/sighting/3d4d5913-2b99-49b9-8f24-8567110ca0cd/export</link>
      <description>{"uuid": "3d4d5913-2b99-49b9-8f24-8567110ca0cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/hissenit.bsky.social/post/3mo3duwog4s2f", "content": "*MS Exchange Server XSS Vulnerability*\n\nThe vulnerability CVE-2026-42897 is a cross-site scripting (XSS) flaw in Exchange Server Outlook Web Access that allows attackers to execute malicious JavaScript.....\n\n =&amp;gt; Train your developers and TPMs! - www.hissenit.com/en/academy/s...", "creation_timestamp": "2026-06-12T08:42:48.356168Z"}</description>
      <content:encoded>{"uuid": "3d4d5913-2b99-49b9-8f24-8567110ca0cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/hissenit.bsky.social/post/3mo3duwog4s2f", "content": "*MS Exchange Server XSS Vulnerability*\n\nThe vulnerability CVE-2026-42897 is a cross-site scripting (XSS) flaw in Exchange Server Outlook Web Access that allows attackers to execute malicious JavaScript.....\n\n =&amp;gt; Train your developers and TPMs! - www.hissenit.com/en/academy/s...", "creation_timestamp": "2026-06-12T08:42:48.356168Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/3d4d5913-2b99-49b9-8f24-8567110ca0cd/export</guid>
      <pubDate>Fri, 12 Jun 2026 08:42:48 +0000</pubDate>
    </item>
    <item>
      <title>ddd3d8e2-8e7b-4dc6-b223-931bbe3d1741</title>
      <link>https://vulnerability.circl.lu/sighting/ddd3d8e2-8e7b-4dc6-b223-931bbe3d1741/export</link>
      <description>{"uuid": "ddd3d8e2-8e7b-4dc6-b223-931bbe3d1741", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3mnzzae3ds42q", "content": "Microsoft Exchange Under Fire: Actively Exploited Zero-Day CVE-2026-42897 Exposes Web-Based Email to Silent JavaScript Attacks +\u00a0Video\n\nA Quiet Patch Tuesday That Closed a Loud Security Gap Microsoft has released its latest Patch Tuesday updates addressing a serious and actively exploited\u2026", "creation_timestamp": "2026-06-11T19:59:36.444372Z"}</description>
      <content:encoded>{"uuid": "ddd3d8e2-8e7b-4dc6-b223-931bbe3d1741", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3mnzzae3ds42q", "content": "Microsoft Exchange Under Fire: Actively Exploited Zero-Day CVE-2026-42897 Exposes Web-Based Email to Silent JavaScript Attacks +\u00a0Video\n\nA Quiet Patch Tuesday That Closed a Loud Security Gap Microsoft has released its latest Patch Tuesday updates addressing a serious and actively exploited\u2026", "creation_timestamp": "2026-06-11T19:59:36.444372Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/ddd3d8e2-8e7b-4dc6-b223-931bbe3d1741/export</guid>
      <pubDate>Thu, 11 Jun 2026 19:59:36 +0000</pubDate>
    </item>
    <item>
      <title>113dc411-18e8-4d9a-8fa3-781e226cb740</title>
      <link>https://vulnerability.circl.lu/sighting/113dc411-18e8-4d9a-8fa3-781e226cb740/export</link>
      <description>{"uuid": "113dc411-18e8-4d9a-8fa3-781e226cb740", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/it-administrator.de/post/3mnzavvpcs22o", "content": "Drei Wochen lang war der Exchange Emergency Mitigation Service die einzige Absicherung gegen CVE-2026-42897. Jetzt liefert Microsoft dauerhafte Patches und empfiehlt die Installation so schnell wie m\u00f6glich.\n\nwww.it-administrator.de/microsoft-ex...", "creation_timestamp": "2026-06-11T12:44:18.941482Z"}</description>
      <content:encoded>{"uuid": "113dc411-18e8-4d9a-8fa3-781e226cb740", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42897", "type": "seen", "source": "https://bsky.app/profile/it-administrator.de/post/3mnzavvpcs22o", "content": "Drei Wochen lang war der Exchange Emergency Mitigation Service die einzige Absicherung gegen CVE-2026-42897. Jetzt liefert Microsoft dauerhafte Patches und empfiehlt die Installation so schnell wie m\u00f6glich.\n\nwww.it-administrator.de/microsoft-ex...", "creation_timestamp": "2026-06-11T12:44:18.941482Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/113dc411-18e8-4d9a-8fa3-781e226cb740/export</guid>
      <pubDate>Thu, 11 Jun 2026 12:44:18 +0000</pubDate>
    </item>
  </channel>
</rss>
